Lucene search
HistorySep 13, 2023 - 5:15 p.m.
CVE-2023-4155
kvm
amd
secure virtualization
linux kernel
cve-2023-4155
vulnerability
denial of service
stack overflow
guest-to-host escape
5.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H
6.6 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.2%
A flaw was found in KVM AMD Secure Encrypted Virtualization (SEV) in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability and invoke the VMGEXIT handler recursively. If an attacker manages to call the handler multiple times, they can trigger a stack overflow and cause a denial of service or potentially guest-to-host escape in kernel configurations without stack guard pages (CONFIG_VMAP_STACK).
Affected configurations
Node
linuxlinux_kernelMatch-
Node
redhatenterprise_linuxMatch8.0
ORredhatenterprise_linuxMatch9.0
Node
fedoraprojectfedoraMatch37
ORfedoraprojectfedoraMatch38
| CPE | Name | Operator | Version |
|---|---|---|---|
| linux:linux_kernel | linux linux kernel | eq | - |
CNA Affected
[
{
"product": "kernel",
"vendor": "n/a",
"defaultStatus": "affected"
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 6",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "kernel",
"defaultStatus": "unaffected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 7",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "kernel",
"defaultStatus": "unaffected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 7",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "kernel-rt",
"defaultStatus": "unaffected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "kernel",
"defaultStatus": "affected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 8",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "kernel-rt",
"defaultStatus": "affected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "kernel",
"defaultStatus": "affected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
]
},
{
"vendor": "Red Hat",
"product": "Red Hat Enterprise Linux 9",
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"packageName": "kernel-rt",
"defaultStatus": "affected",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
]
},
{
"product": "Fedora",
"vendor": "Fedora",
"collectionURL": "https://packages.fedoraproject.org/",
"packageName": "kernel",
"defaultStatus": "affected"
}
]Related
cvelist
cvelist
CVE-2023-4155 Sev-es / sev-snp vmgexit double fetch vulnerability
2023-09-13 16:11:39
nvd
nvd
CVE-2023-4155
2023-09-13 17:15:10
ubuntucve
ubuntucve
CVE-2023-4155
2023-08-09 00:00:00
cnvd
cnvd
Linux kernel conditional contention vulnerability (CNVD-2023-71721)
2023-09-12 00:00:00
prion
prion
Race condition
2023-09-13 17:15:00
redhatcve
redhatcve
CVE-2023-4155
2023-08-07 07:48:52
debiancve
debiancve
CVE-2023-4155
2023-09-13 17:15:10
cbl_mariner
cbl_mariner
ibm
ibm
Security Bulletin: IBM Security Guardium is affected by multiple vulnerabilities (CVE-2023-4806, CVE-2023-4155, CVE-2023-4527)
2024-01-24 19:00:38
Security Bulletin: Vulnerabilities in Linux Kernel might affect IBM Spectrum Copy Data Management
2024-01-12 16:32:54
Security Bulletin: Multiple Vulnerabilities in CloudPak for AIOps
2023-12-18 18:02:34
nessus
nessus
RHEL 8 : kernel (RHSA-2024:3859)
2024-06-12 00:00:00
Fedora 38 : kernel (2023-ee241dcf80)
2023-08-14 00:00:00
Fedora 37 : kernel (2023-d9509be489)
2023-08-14 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: kernel-6.4.10-200.fc38
2023-08-14 01:34:28
[SECURITY] Fedora 37 Update: kernel-6.4.10-100.fc37
2023-08-14 00:47:18
openvas
openvas
Fedora: Security Advisory for kernel (FEDORA-2023-d9509be489)
2023-08-14 00:00:00
Fedora: Security Advisory for kernel (FEDORA-2023-ee241dcf80)
2023-08-15 00:00:00
Ubuntu: Security Advisory (USN-6343-1)
2023-09-07 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2023-10-23 00:04:51
Updated kernel-linus packages fix security vulnerabilities
2023-10-23 00:04:51
Updated kernel-linus packages fix security vulnerabilities
2023-11-30 01:29:41
ubuntu
ubuntu
Linux kernel (OEM) vulnerabilities
2023-09-06 00:00:00
Linux kernel vulnerabilities
2023-10-04 00:00:00
Linux kernel (Raspberry Pi) vulnerabilities
2023-10-19 00:00:00
osv
osv
linux-oem-6.1 vulnerabilities
2023-09-06 12:32:04
linux-hwe-5.15, linux-oracle-5.15 vulnerabilities
2023-10-06 13:13:53
linux-raspi vulnerabilities
2023-10-19 14:55:22
photon
photon
Important Photon OS Security Update - PHSA-2023-5.0-0101
2023-09-26 00:00:00
debian
debian
[SECURITY] [DSA 5492-1] linux security update
2023-09-09 21:40:04
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2023-11-12 00:00:00
kernel security, bug fix, and enhancement update
2023-11-17 00:00:00
redhat
redhat
almalinux
almalinux
Important: kernel security, bug fix, and enhancement update
2023-11-14 00:00:00
5.6 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H
6.6 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.2%
Related for CVE-2023-4155